Asante Technologies INTRACORE 3724PWR User Manual

Command Purpose

access-list name acl1 set ……

Set the criteria statement of an access list named ‘acl_name’

access-list name acl1 action ……

Specify the action to take if criteria of the access list is
matched

In the following example, an access list will be created to block traffic sent from MAC address 00-00-94-12-34-56.

Switch(Config)# access-list name acl_mac add priority 1

Switch(Config)# access-list name acl_mac set mac-mode macsa 00-00-94-12-34-56 ff-ff-

ff-ff-ff-ff

Switch(Config)# access-list name acl_mac action deny

Switch(Config)#

In the next example, a standard access list will be created to deny all traffic from 192.168.123.254 , and allow all
other traffic to be forwarded.

Switch(Config)# access-list name acl_ip add priority 1

Switch(Config)# access-list name acl_ip set ip-mode srcip 192.168.123.254

255.255.255.255

Switch(Config)# access-list name acl_ip action deny

Switch(Config)#

In the following example, an access list will be created to deny Telnet traffic.

Switch(Config)# access-list name acl_tcp_src add priority 1

Switch(Config)# access-list name acl_tcp_src set ip-mode l4port src-port from 23 to 23

Switch(Config)# access-list name acl_tcp_dst add priority 2

Switch(Config)# access-list name acl_tcp set ip-mode l4port dst-port from 23 to 23

Switch(Config)# access-list name acl_tcp_src action deny

Switch(Config)# access-list name acl_tcp_dst action deny

Switch(Config)#

51

Asante IC3724PWR

User’s Manual